Cisco Firewall :: 65535 ASA - Port Scanning Protection Through Embryonic Limit Setup

Jul 1, 2011

url...I discovered that it would be possible to be protected from portscan, i mean when someone scan our nework/host from outside, the attacker will see all the 65535 ports as "open" (in that way it will be more difficult for an attacker to perform customized attacks...)So I have follow the setup in that link: policy-map global_policy class class-defaults set connection embryonic-conn-max 15 per-client-embryonic-max 3 service-policy global_policy global . The problem is that I don't have the exepected result..If i do a portscan over Internet from an external host to my hosts the portscan is successfully working and I can view my open ports...I have also tried to set this through a "match" in an access-list but without any sucess.

View 3 Replies


ADVERTISEMENT

D-Link DIR-615 :: HTTP Listening On Port 65535

Aug 4, 2011

I am just setting up a LAN using DIR-655 and I noticed this line in the logs: notice   Aug 4 03:25:55   HTTP listening on port 65535

Is the router listening to that port?

View 1 Replies View Related

Security / Firewalls :: Port Scanning On LAN

Jul 24, 2012

There are three Win 7 laptops on the LAN trying to connect to the ASA5500 Firewall. They generate a Severity Level 3 alert and try the same port three times then move to the next numerical port and try that three times. Is this a malicious Hack.

View 5 Replies View Related

How To Setup E-mail Protection

Apr 25, 2011

My taskbar is telling me I have no AVG security for my e-mails

View 1 Replies View Related

Cisco Firewall :: 65535 Make Video Conference Call Through Microsoft Office Communicator

Oct 19, 2010

my client wants to make videoconference call thorugh Microsoft Office Communicator, this should be operating between host from one site to another one, but we already configured some rules in the firewalls, and making some test I see that the videoconference use dynamic ports (1024 to 65535) and if we let to operate the videoconference we should remove all the rules in the firewall and that's not the point.

View 6 Replies View Related

Cisco Firewall :: Limit Speed On Port Or VLAN ASA 5505

Aug 7, 2012

We need to have one connection with less internet bandwidth assigned to it than all other other connections. Basically it is a separate conection from all others, incoming just from one switch port and separate VLAN.I know this can be done on the switch by limiting the bandwidth allocated to a port,
 
however, is it possible to have the speed limited down, just before it goes to the internet, ie, on the ASA, rather than doing it on the switch?The firewall is an ASA 5505.

View 2 Replies View Related

Cisco WAN :: How To Enable Protection Path In GSR 12404 Router Gigi Interface Connected To Mux Port

Sep 21, 2011

how to enable protection path in GSR 12404 router Gigi interface connected to mux port. Like we configure APS group for POS interfaces.

View 1 Replies View Related

Cisco Firewall :: ASA 5540 Use For Protection From Internet Zone

Mar 7, 2012

-1x Cisco ASA5540
-1x Catalyst 3750x-48T (L3 Core Switch)
 
Id like to seek expertise on validating a simple firewall setup.
 
Do i trunk core switch traffic to the cisco ASA OR assign L3 link instead? It is basic understanding that the Cisco ASA is usually use for protection from our internet zone.A typical Cisco ASA setup would consist of outside, inside, dmz zone.
 
L3 core switch consist of 20 VLANS20 vlan needs to be blocked from each other. Eg Wireless Vlan does not have access to Server Vlan etc etc. 

what is the best practise to filter ip address within vlan from reaching each other.Should i trunk all my vlan to the Cisco firewall? (For easy vlan restrictions: but is that best practise?)Or do ACL on the core switch itself? but what if i have tons of servers ip that needs specific ports blocking or etc.How would i be able to manage all my ACL on the core switch. 

View 1 Replies View Related

Cisco Firewall :: PIX 525 Anti-Spoofing Attack Protection

Mar 19, 2011

I have multiple questions about the PIX 525 software version 8.0(2) ASDM 6.0 (2)I am a windows network admin that is new to Cisco and routing in general. I have read through the forums and the Cisco documentation, but have not been able to fully understand the topics discussed within.

1. Anti-Spoofing Attack Protection
2. Scanning Threat Detection - Auto Shun
3. NTP Sync Verification
4. QoS implementation5. IOS and ASDM Backup
 
This option is currently DISSABLED for all interfaces.I know what ip address spoofing is, but what is the functionality of these options specifically? How does it work and should I enable it and for which interfaces? Second Question: Scanning Threat Detection - Auto Shun
 
I found this option in ASDM under: Configuration --> Firewall --> Threat Detection.Enable Basic Threat Detection and Enable Scanning Threat Detection are both currently ENABLED, but Shun Hosts detected by scanning threat is currently DISABLED. Also, the Networks Excluded from Shun field is empty. I know what the shun command does. I have used it many times when I have been fortunate enough to catch some piece of **** trying to spam my mail server or gain access to it.
 
What I am asking specifically is how does the Auto Shun work? Should I enable it and what are the potential consequences? Also, what exactly is a scanning attack?
 
I am not familiar enough with the PIX and with the topics discussed in the document to successfully apply the info within. Plus, I'm not sure it covers the kind of basic, all-inclusive bandwith cap I would like to put in place.
 
The goal is to cap the maximum internet (outside) bandwidth that inside5 can use to a reasonable percentage while allowing the other interfaces to have the remainder.

How would I go about this implementation? 2. Is there a way to allow inside1 - inside4 to use max bandwidth when there is no traffic on inside5?
 
I am probably, at least, the third owner of this device and I do not have an account with Cisco nor can my tiny (perhaps non-exsistant given the current economic state) IT budget afford any form of support or software licensing with them.My goal is to backup the IOS and ASDM data in the event that I have to replace the device due to a hardware failure.
 
I found a file transfer function within ASDM which allowed my to copy the files pix802.bin, asdm-602.bin and tfp from flash to my desktop computer. I also have a copy of the activation key info and my current configuration.
 
1. Have I backed up all the data/info I would need to restore this software and ASDM to another unit.
2. The activation key screen also has a serial number field. Is this the hardware serial number or is it for the software? and is it tied to this device specifically or can I use it to restore another unit if necessary?
3. Is there anything else I should do or be aware of regarding backup and restore for the PIX?
4. What is the tfp file?

View 1 Replies View Related

Linksys Cable / DSL :: SPI Firewall And DoS Protection On WAG320N?

Mar 2, 2011

I want to make use of the SPI Firewall and DoS Protection features of the WAG320N.  What are these for?  How do you configure them on WAG320N? 

View 1 Replies View Related

Cisco Firewall :: 3062 / Setup Port Forwarding On ASA 8.4?

Mar 17, 2013

I am trying to setup port forwarding on the asa. Inbound port 3062 needs to go to an address on a server inside the corporation. NO DMZ...I do not have the option under firewall to select port forwarding. I have add a nat rule before network object , add network object add nat rule after network object i am not sure who is inbound (I will ask) all customer said was certain ports need to go to certain PC's and the asiest way is to add portforwarding but I dont see the "Add " under firewall as so many posts say..

View 1 Replies View Related

Cisco Firewall :: Setup Port Mirroring On An ASA 5510?

Sep 14, 2011

I'm trying to setup port mirroring on a Cisco ASA 5510, but when I try to use the switchport monitor command, that command is not recognized.I've selected what interface I want to configure (conf-if), but the switchport command seems to not be part of the IOS.I'm running ASA version 8.2(1)

View 9 Replies View Related

Linksys Wireless Router :: WRT120N Disable SPI Firewall Protection And Anonymous Internet Request

Oct 14, 2009

I'm about fed up with with having this issue that no one can seem to solve. It dates back to when I owned a WRT54G router. I started experiencing random disconnects with the router, both wired and wireless. I only owned the router a year and figured it was going bad.
 
So I purchased this WRT120N router late August. Soon after I set the router up, low and behold the same problem started. I've called my ISP a couple occasions and they tell me that everything is fine from their end. I've spoken with Linksys tech support on 3 seperate occasions. I have changed the MTU to 3 different values and upgraded the firmware. The 2nd support tech suggested that I do those two things. To my surprise this worked for 2 or 3 weeks with no problem. The same problem started again just last night disconnecting intermittingly. I spoke with another support tech and they suggested that disable the SPI Firewall protection and Anonymous internet request. That did not work for the brief time I had this disabled.
 
More into the problem, when it disconnects the modem seems fine but the activity light on it stops as it should. The router itself appears to reboot, then when it comes back up the connection restores. What could possibly cause this? I currently have version 1.0.02.This is getting very frustrating and I am getting very near not using Linksys/Cisco products any longer.

View 9 Replies View Related

Cisco Firewall :: ASA 5505 - Setup Single Port Exclusion For Static NAT?

Sep 20, 2012

I have been using static NAT to map between a single server behind an ASA 5505 and a single public IP address. In other words, I've been doing this:
 
object network NAT_ME
nat (inside,outside) static interface
 
Now I would like to start using the clientless VPN feature of the ASA, so I of course don't want that particular port forwarded to the server. Is there a way to define such an exclusion? I've tried several things, including setting up a separate NAT rule to direct that port back to the ASA's interface, without luck.
 
If that is not possible, what configuration would I need to move to in order to get the behavior that I want? It is important that all (non-VPN) traffic is passed exactly as it arrives at the firewall (whether it is coming from internal or external), with the exception of changing the IP address (i.e., I need static port mappings for some of my services).

View 5 Replies View Related

Cisco WAN :: 2900 ISR - Upper Limit For EIGRP Hub And Spoke Setup?

Aug 9, 2011

Is there any suggested upper limit to a single EIGRP hub-and-spoke design (i.e. with a single central router)?
 
Router is a 2900 ISR
 
I'm vaguely aware of a similar design limitation with OSPF areas where no single area should contain more than 40 - 80 routers. Could be heresay...

View 13 Replies View Related

Cisco WAN :: 2900 Isr Suggested Upper Limit For EIGRP Hub And Spoke Setup

Mar 25, 2013

Is there any suggested upper limit to a single EIGRP hub-and-spoke design (i.e. with a single central router)?Router is a 2900 ISR,I'm vaguely aware of a similar design limitation with OSPF areas where no single area should contain more than 40 - 80 routers.

View 8 Replies View Related

Cisco Switching/Routing :: 65535-BGP Distribute List Blocking Routers / Configuration Does Not Work?

Jan 17, 2013

Why the below configuration does not work? BGP exchanges routes without a problem all the time the distribute list is removed from the config. When I apply the distribute list it blocks all routes, not just those intended in the prefix list.

[CODE]....

View 2 Replies View Related

Cisco WAN :: 3400 NNI Port Limit Reached

Feb 26, 2013

I have a ME-3400EG-12CS-M switch the ports 13 thru 16 have sfp's and are connection to other 3560 switches over fiber. The GIG  0/1 on the 3400 connects to the long haul sonet transport electrically. The IOS is Version 12.2(55)SE3. I can't ping or log into the 3400 unless I am at one of the 3560 switches hanging off of the NNI ports 13 thru 16.  I think it is because the max number of NNI ports are 4 and I can't change the GIG 0/1 to a NNI port. Can I make config changes to the UNI port so that it will act like a NNI port with out upgrading the IOS to allow for more NNI ports?

View 1 Replies View Related

My Wifi Keeps Scanning

Feb 14, 2013

My Wi-Fi keeps scanning. Under Wi-Fi networks I get the word "Washing" which is secured with WPA/WPA2PK which I don't want. How do I cancel this for something I want?

View 1 Replies View Related

Cisco Switches :: Port Mirroring Limit On SGE2010?

Oct 25, 2012

I have been told there is a limit (8) on the number of source ports that can be mirrored to a given destination port. I can find no specifications or other documentation to corroborate this claim. Any factual data to confirm or refute this claim?

View 7 Replies View Related

Options To Limit Bandwidth For Port Or Mac Address?

Nov 10, 2012

Been looking around in my routers settings for something that even comes close to limiting bandwidth on a specific port, or mac address, but the only thing I can find is priority settings like "Low, Normal, High, and Highest" I did however see this:

I am not 100% sure if I can specifically set bandwidth limit per port or mac address, cause I don't see an option to do that, so I presume it just limits the whole network as one...

View 13 Replies View Related

Pause Fax Machine During Scanning?

Feb 17, 2011

I have connected fax machine with line card, line card with Modem (MT5656SMI), and with modem is connected to PC UART. i want to pause the fax machine from PC, while scanning. i gave AT+FTS=10 command. but it did not worked.

how to pause the fax machine during scanning??

View 1 Replies View Related

Cisco Firewall :: 1921 - IOS Firewall (ZBF) Limit SMTP Connections From Same IP

Mar 14, 2013

IOS Firewall (ZBF) Limit SMTP connections from same IP
 
we are running a Postfix MTA behind a IOS Firewall (ZBF) on a CISCO1921. Sometimes we get more than 2000 smtp login attemps like
 
postfix/smtpd[123456]: connect from (...) (...) postfix/smtpd[123456]: lost connection after AUTH from (...)
 
in one second. May be bruteforce or DoS ... nevertheless - we like to protect the Postfix MTA from this stuff.
 
Can we inspect the smtp and limit connections in a time period from the the same IP? Something like "not more than 10 smtp connections during 60 seconds from the same ip" .

View 8 Replies View Related

Cisco Switching/Routing :: Rate Limit 2960 Port To 1 MB

Nov 5, 2009

To rate limit the 2960 switch port to 1 MB.I have made the specified chnages , how ever still it is reaching more tha 1 MB
 
Hard coded the bandwidth of port to 10 MB and have applied the specified command srr-queue bandwidth limit 10.

View 4 Replies View Related

Cisco Switches :: Port Mirroring Limit Of 8 Ports On SGE2010P

Jan 24, 2013

Recently our company purchased 3 Lynksys SGE2010p, At the moment they work as a stack  but as we are implementing UCCX we need to mirror 15 ports but during the provisioning i've noticed that the limit is 8 ports per stack. I'm wondering whether this is a known issue or just a known limitation . I believe that most probably i'll need to move back to stand alone mode so i could configure 8 mirrored ports per switch.

View 2 Replies View Related

Scanning Open Ports On Network

Jan 24, 2012

My company deals in a video conference software which requires certain ports to be open to work correctly, including tcp and udp ports. Clients who want to test / purchase have different kind of network setup. I usually tell them to open those ports require by the software on their end. How do i ensure if the port range required by my software is open once I am at their location. I have installed a few network scan tools but not sure what ip do i scan. Should I scan my server's ip once I am at their location and connected ? or should I scan their gateway ?

View 5 Replies View Related

Edimax EW 7612HPn Not Scanning Networks?

Jun 18, 2011

i have a Edimax usb adapter Ew 7612HPn which is brand new, & its not scanning any networks though the light flashes fast, i tried on both my & my dad's laptop, & same problem.Also tried different Usb cables still the same, but sometimes it worked, but mostly dosn't work.Kindly note that i am using this on my vaio Cr 354 windows vista 32 bit SP2 home premium.From day1 it was like kind of faulty, i mean it worked but kind of disconnected in between, but now it dosn't work at all just keeps flashing the blue light.

View 1 Replies View Related

Scanning An External Network Through UDP / ARP Scan?

Jun 24, 2011

the setup is as follow: I have two separate network.192.168.90.xx and 10.10.xx.xx the two boxes being connected via an ethernet cable. How would I go about having a 192.(...) machine speak to a 10.(...) box? My boss tells me that via a UDP call the 192.(...) machine can get the IP of a 10.(...) box. Isn't UDP dependant on a subnet mask to limit the # of queries, and in that case would it even be feasable? I was thinking instead of spoofing the 192.(...) IP to an unoccupied 10.(...) IP. Of course to do this would require knowing what IPs are unoccupied on the other network, and I cannot assume the would respond to pings.

View 5 Replies View Related

Dell :: Scanning From V313w To Mac OS Lion?

Oct 30, 2011

I recently bought a dell v313w and I finally managed to configure the printer with my mac via wifi. 

I'm still very disappointed because I just can't figure out how to scan from my v313w to the mac as it doesn't appear in the possible destination hosts. 

View 1 Replies View Related

Cisco Switching/Routing :: Rate Limit Trunk Port On 3750?

Oct 3, 2012

Is it possible to rate limit on a L2 trunk port on a 3750?
 
current port config and ios are as follows;
 
interface GigabitEthernet1/0/50
description ***  Connection to Fiber Link  ***
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,172
switchport mode trunk
end  
flash:c3750-advipservicesk9-mz.122-46.SE.bin
  
i was wondering if the "srr-queue bandwidth limit 10" command would work to limit the output from this interface to be 10 % of the port bandwidth and then the same command could be done on the other side.

View 1 Replies View Related

Cisco Switching/Routing :: 3750x Switch Port Rate Limit

Oct 8, 2012

I want to limit the bandwidth going to remote site on the switch connecting to our netapp.We have a 4 port channel group setup on our 3750x switch going to our netapp storage. We have a Wan 100mb link to our remote site and we want only 60MBs of that link to be used for Netapp traffic all other local traffic needs to use the full amount of the bandwidth to the netapp.
 
Is possible to allocate bandwidth in this way and how would I go about this? We dont have access to the routers for the link and they plug directly into a port on our cisco.

View 3 Replies View Related

Linksys Wireless Router :: E1000 - Limit Wan Port To 10mbps?

Nov 3, 2012

I have a 9-year old PPPoE DSL modem at home whose ethernet port is only 10mbps. For some reason I am unable to establish PPPoE connection on my E1000 when connected to this modem (PPPoE login is correct, as it works with a different router when connected to the same modem). Someone suggested that the problem may be that the DSL modem is unable to negotiate Ethernet connection because E1000's WAN port is 10/100mbps (autosensing failing?). The suggestion was to manually set the router's WAN port to 10mbps. Is there such a switch somewhere on the E1000 - I cannot find it in web admin console anywhere?
 
Any other guesses as to why the router and the modem cannot connect?
 
FWIW, the dsl modem is a SpeedStream 5360 E1000 hardware v 2.1; firmware 2.1.02

View 1 Replies View Related

D-Link DIR-825 :: 5 Ghz Enabled Doesn't Show Up When Scanning?

Dec 15, 2010

I am running a DIR-825 I believe one of the original's no updates or anything.  I run it mixed mode.  The 2.4 shows up and I can connect to but the 5 ghz (n) speed says it's enabled but I can never see it when I scan on any of my wireless n products (laptops and other computers).  Dlink support told me to change to mixed mode g and n.  I was running it in mixed mode (a, g and n).  D link told me to change to mixed mode g and n and to make sure they stay on channel 6 and 11.  Is this correct.  Which firmware should I upgrade to and is there any easy way to do this?

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved